Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/qYFrVGih1N0O_nam8AulOGNkJqQ.roa
File: qYFrVGih1N0O_nam8AulOGNkJqQ.roa (raw, json)
Hash identifier: 1N+hKyMY0DWpa0h4fHzqee1aQmsFmarpfjCByODTc8I=
Subject key identifier: A9:81:6B:54:68:A1:D4:DD:0E:FE:76:A6:F0:0B:A5:38:63:64:26:A4
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A85DD8C
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/qYFrVGih1N0O_nam8AulOGNkJqQ.roa
Signing time: Sat 01 Jan 2022 16:07:15 +0000
ROA not before: Sat 01 Jan 2022 16:07:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61370
IP address blocks: 85.187.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176545164 (0xa85dd8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9816b5468a1d4dd0efe76a6f00ba538636426a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:81:6c:ae:e1:7c:7d:1b:fa:29:8e:0c:e0:9a:
4e:25:00:d0:80:7c:30:7f:f1:5d:68:81:fd:37:81:
1e:9a:4a:4c:c5:31:d3:45:93:80:99:d0:fd:0b:ad:
21:ec:ab:36:92:25:b2:cd:59:8c:3c:10:cb:7f:c4:
fb:d9:ef:7a:7d:61:d5:15:eb:45:81:aa:2f:be:96:
3d:3d:67:87:02:06:9e:81:a9:c7:ab:d9:14:5a:34:
2e:69:a0:43:63:10:f5:99:e7:bf:92:ff:1e:6b:79:
65:f4:ec:b5:77:41:55:a4:9a:fb:3c:e5:c7:ab:a8:
1f:14:3c:f2:8e:21:d3:11:98:76:f4:7a:4f:af:05:
fa:91:e7:14:af:76:fc:92:43:2b:38:f8:57:b7:06:
9c:f1:fb:a8:49:5e:81:25:85:b5:97:3c:10:4b:bd:
ca:0d:c5:94:74:09:84:49:41:cf:08:d4:35:7f:e0:
bc:72:8c:74:53:ea:09:9f:24:c9:12:fb:97:4d:b9:
02:50:94:a1:af:3b:d2:68:05:3b:fc:88:e1:4f:69:
8e:14:ab:99:0f:25:7d:57:b2:6c:68:af:aa:6b:9d:
81:4b:f6:05:22:a7:b6:7d:f1:0e:d9:f0:5a:94:19:
82:01:bd:0a:b1:eb:b0:6a:e3:7c:68:8c:ca:5d:26:
49:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:81:6B:54:68:A1:D4:DD:0E:FE:76:A6:F0:0B:A5:38:63:64:26:A4
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/qYFrVGih1N0O_nam8AulOGNkJqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.191.0/24
Signature Algorithm: sha256WithRSAEncryption
98:e8:40:ca:3c:65:83:ed:41:5b:e4:a1:6a:4c:05:4f:3f:29:
01:7c:41:d4:d7:c8:5d:1c:05:1c:bb:d0:12:ab:62:8c:53:00:
58:5e:cb:5a:c2:d5:1d:b1:36:eb:b7:b9:5e:54:9a:b0:95:46:
b1:bc:78:94:6d:09:b9:3b:db:d1:84:11:67:08:89:48:a1:14:
c8:3a:b6:74:00:d1:2e:73:d2:1c:48:fb:de:d0:40:da:6c:81:
53:fa:a1:c8:e4:7b:c5:03:b5:34:6d:6e:1b:f4:ea:74:8d:5c:
d3:42:f2:02:bc:8e:6d:b4:89:74:ed:bf:f8:e5:a1:15:84:7c:
74:0a:81:7a:40:60:49:18:16:74:06:10:04:ed:24:d5:65:ea:
c2:4c:92:16:3b:2b:dc:9a:11:14:8c:d8:2f:e4:82:97:d1:d4:
ca:68:51:33:7e:3f:2d:06:3a:34:a8:30:ce:bb:0e:dd:53:43:
c2:7b:4c:66:db:8c:ea:36:04:b5:11:fa:4a:f9:a5:8d:95:53:
1a:fe:71:a9:39:9d:a0:77:ed:ae:56:50:45:8a:92:3d:63:68:
d8:9d:24:91:c0:1b:27:b5:ee:06:c9:94:d3:ab:6c:ac:06:cd:
3b:ea:b4:25:be:52:48:9a:16:1d:f2:26:dd:d7:82:32:df:5b:
2d:f3:e6:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org